Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/sHh-M-if45_UWr6FhBw9gQzYAfs.roa
File: sHh-M-if45_UWr6FhBw9gQzYAfs.roa (raw, json)
Hash identifier: DR2bR93s8+ltc6A9NcR5TlB/Jg3z59sN4PN/p9cCi44=
Subject key identifier: B0:78:7E:33:E8:9F:E3:9F:D4:5A:BE:85:84:1C:3D:81:0C:D8:01:FB
Certificate issuer: /CN=5f93da757c17fe38a0e6cd70275c73c8c69c896e
Certificate serial: 01862D17A3DD9FAE95C4030167DA9A27E41D
Authority key identifier: 5F:93:DA:75:7C:17:FE:38:A0:E6:CD:70:27:5C:73:C8:C6:9C:89:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5PadXwX_jig5s1wJ1xzyMaciW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/sHh-M-if45_UWr6FhBw9gQzYAfs.roa
Signing time: Tue 07 Feb 2023 18:16:09 +0000
ROA not before: Tue 07 Feb 2023 18:16:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201073
IP address blocks: 185.86.206.0/24 maxlen: 24
2a05:bb80::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 Feb 2023 20:11:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2d:17:a3:dd:9f:ae:95:c4:03:01:67:da:9a:27:e4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f93da757c17fe38a0e6cd70275c73c8c69c896e
Validity
Not Before: Feb 7 18:16:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0787e33e89fe39fd45abe85841c3d810cd801fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:81:25:bf:d4:24:09:c8:e9:21:42:6c:ae:e6:
90:3d:3a:51:50:9c:ab:1c:e5:70:52:fe:80:93:0c:
a9:08:a8:fc:09:2e:c5:d0:65:c0:22:ec:bf:21:ca:
24:b1:b0:d6:0f:d4:48:d3:5e:c1:48:70:c8:ae:5a:
47:cc:c6:5a:b5:a6:0f:3a:b3:21:4a:6b:46:c0:af:
68:c5:72:ad:a0:1e:45:af:fa:be:3f:77:a3:ef:74:
f9:30:24:a6:5e:c7:4e:c9:85:d3:6d:69:07:a0:f7:
f8:df:37:21:3c:a6:36:95:ae:8c:b8:28:1b:27:95:
04:04:d5:7f:ed:97:d1:86:9a:d3:5d:3b:43:5a:62:
00:d6:2b:a5:3e:c3:b2:68:64:54:07:25:98:87:33:
d4:fe:a2:2b:15:18:7d:04:b5:42:cb:3c:23:85:de:
29:5f:27:21:f0:0b:fb:00:a0:f9:0d:ec:2a:dc:c3:
ba:31:46:0e:93:d1:6d:c3:fb:85:88:1b:da:35:e6:
35:62:51:48:92:8f:72:4c:19:f6:6d:a7:95:b5:60:
94:f4:f1:e5:3c:b8:c4:d8:57:31:19:ee:d9:50:ac:
95:f8:dd:37:f5:99:ba:f0:7f:c1:3d:1f:a1:50:3f:
5f:56:f5:23:57:97:d1:6c:3d:47:91:ea:dd:56:a8:
b1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:78:7E:33:E8:9F:E3:9F:D4:5A:BE:85:84:1C:3D:81:0C:D8:01:FB
X509v3 Authority Key Identifier:
keyid:5F:93:DA:75:7C:17:FE:38:A0:E6:CD:70:27:5C:73:C8:C6:9C:89:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5PadXwX_jig5s1wJ1xzyMaciW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/sHh-M-if45_UWr6FhBw9gQzYAfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/79e439-fc0b-4e6e-8b06-39fb66a26ef8/1/X5PadXwX_jig5s1wJ1xzyMaciW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.206.0/24
IPv6:
2a05:bb80::/29
Signature Algorithm: sha256WithRSAEncryption
14:54:53:c3:44:d0:8a:d3:b1:0f:5d:e5:26:10:fe:49:96:cc:
bf:d1:5b:60:44:2b:14:6c:36:f4:2b:ad:29:da:e2:ba:f5:c7:
fc:43:0f:d5:7a:2a:c4:f3:3a:78:62:35:54:db:f9:5d:7f:76:
b1:61:66:2b:b1:25:ab:bf:60:0d:e2:a3:b3:55:bf:36:df:71:
30:ca:cb:77:bd:74:7b:af:5c:d6:93:cd:9f:d0:d0:93:0b:ae:
2d:c7:b6:23:dc:14:54:82:bf:34:6d:9c:af:ef:7e:6f:10:bc:
3f:9d:08:90:79:a6:39:db:df:16:25:c2:83:77:90:01:53:06:
90:24:db:ad:33:bc:da:01:c7:21:83:8d:7b:6f:5c:0c:54:88:
e1:74:6c:a0:88:0f:e4:bd:30:1b:88:5c:eb:41:73:7c:ad:b4:
70:67:36:1c:3c:a8:c8:54:9b:d9:ad:12:6e:9d:47:9a:67:c4:
59:a5:4d:69:c9:53:c6:97:6f:4d:4c:36:3f:f7:48:4a:6f:a8:
10:1b:89:ba:3b:0e:9b:71:4f:a6:ca:27:15:0f:b9:1f:78:5e:
ee:4f:42:d2:38:7d:5a:1e:12:6f:ba:33:04:17:f1:1f:89:8d:
8c:3f:73:dc:59:74:b6:6d:3f:32:a6:3e:65:10:7f:ac:5a:01:
ad:9b:bf:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:10 2024 by rpki-client on console-ams.rpki-client.org